Sonar is a security researcher's Swiss army knife for finding and exploiting vulnerabilities that require out-of-band interactions
☆21Jun 16, 2026Updated 2 weeks ago
Alternatives and similar repositories for sonar
Users that are interested in sonar are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Mar 26, 2022Updated 4 years ago
- GraphQL application security testing helper☆20May 22, 2023Updated 3 years ago
- Bundle of wordlists for brute-forcing subdomains (World + RUSSIA based).☆69Jun 16, 2018Updated 8 years ago
- RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a gi…☆17Jun 7, 2024Updated 2 years ago
- Various wordlists for bruteforce☆35Nov 9, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆43Aug 5, 2022Updated 3 years ago
- Check bitrix vulnerabilities☆100Jan 22, 2024Updated 2 years ago
- Yet Another Wordlists Repo☆136Jan 6, 2022Updated 4 years ago
- 浏览器XSS 过滤器Fuzzing 框架 (browser xss aduit fuzzing framework )..☆15Sep 13, 2016Updated 9 years ago
- ToolShell scanner - CVE-2025-53770 and detection information☆18Dec 7, 2025Updated 6 months ago
- Extract uncompiled, uncompressed SPA code from Webpack source maps. A fork of @rarecoil's work.☆13Jul 11, 2024Updated last year
- Here you can find writeups from various CTFs that I've participated in.☆12Jul 30, 2023Updated 2 years ago
- API for Asset Service☆15Aug 15, 2024Updated last year
- Python utility to takeover domains vulnerable to AWS NS Takeover☆86Feb 2, 2023Updated 3 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- SAP penetration testing Web and network cheatsheet☆17May 15, 2022Updated 4 years ago
- A simple sveltekit template to start a project using tailwind & daisyui☆11Jan 5, 2024Updated 2 years ago
- ☆19Apr 9, 2024Updated 2 years ago
- [CVE-2020-14882] Oracle WebLogic Server Authenticated Remote Code Execution (RCE)☆13Nov 9, 2020Updated 5 years ago
- This automation protect against subdomain takeover on AWS env which also send alerts on slack.☆11Aug 1, 2021Updated 4 years ago
- gruvbox dark theme for tmux☆14Aug 25, 2021Updated 4 years ago
- Транслятор запросов к LLM Yandex Cloud из SDK OpenAI☆19Jan 10, 2025Updated last year
- Chase subdomains by parsing the results of Google and Yandex search results☆16Sep 29, 2023Updated 2 years ago
- If you're using Burp Suite Community Edition and want to supercharge your workflow with some powerful AI assistance – without needing Bur…☆54Apr 16, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- A vulnerable application exposing Spring Boot Actuators☆123Feb 25, 2019Updated 7 years ago
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆255Dec 9, 2025Updated 6 months ago
- Uzbek cyrillic/latin alphabetic, upper/lower/capital-case, name/surname/patronymic wordlists (dictionaries) and their combinations☆13Aug 4, 2022Updated 3 years ago
- ☆14Aug 10, 2022Updated 3 years ago
- PoC for distributed NTP reflection DoS (CVE-2013-5211)☆10Oct 4, 2019Updated 6 years ago
- Hybrid Botnet over TOR targeting Linux machines☆11Aug 1, 2021Updated 4 years ago
- A Nuclei security scanning server based on MCP (Model Control Protocol), providing convenient vulnerability scanning services.一个基于 MCP (M…☆20Aug 24, 2025Updated 10 months ago
- ☆43Apr 23, 2025Updated last year
- ☆26Feb 16, 2021Updated 5 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- GitLab CI security tools runner☆18Feb 3, 2023Updated 3 years ago
- Generates a DEBUG PIN for flask applications based on Werkzeug☆20Nov 22, 2023Updated 2 years ago
- AES-GEM (AES Galois Extended Mode) implementation.☆14May 19, 2026Updated last month
- ☆13Feb 4, 2025Updated last year
- Issue with NSCollectionView's default drag and drop implementation☆12May 3, 2018Updated 8 years ago
- All-in Fuzzer. Burp suite extension for auto fuzzing params, headers, body☆36Apr 9, 2026Updated 2 months ago
- ☆21Oct 20, 2018Updated 7 years ago